Legal Centre
Your Privacy at Royaloak Casino
We explain what data we collect, why we need it, and how you can control it. You will also find clear guidance on GDPR rights, cookies, and retention timelines.
What We Collect and Store
At Royaloak Casino, we collect only the information we need to open and manage your account, process payments safely, meet legal duties, and protect our platform. This page is a plain-language summary, so we keep the focus on the practical essentials.
Here is the main data we collect:
- Account data: your email address, full name, home address, date of birth, username, and account settings.
- KYC data: identity documents, proof of address, and in some cases a selfie or live verification check to confirm that you are the account holder.
- Payment data: deposit and withdrawal details processed through PCI-DSS compliant payment partners; we do not store full card details unnecessarily.
- Gameplay data: bets placed, session times, game activity, results, bonus usage, and responsible gaming interactions.
- Device data: IP address, browser type, operating system, device identifiers, browser fingerprint signals, and app or site version data.
- Marketing preferences: whether you want email, SMS, or promotional messages from us.
We use this information to keep your account accurate, secure, and available when you want to play.
Why We Need Your Information
We collect personal data for specific operational and legal reasons, not as a formality. At royaloak casino, privacy and compliance work together: we need enough information to verify who you are, keep payments secure, and deliver a reliable service.
We use your information for these core purposes:
- KYC and AML compliance: to meet licensing and anti-money laundering requirements, including age and identity verification.
- Fraud and bonus abuse prevention: to detect duplicate accounts, payment fraud, chargeback risk, collusion, and misuse of promotional offers.
- Personalized recommendations: to show games, providers, and bonus offers that better match your interests and playing history.
- Transactional emails and service messages: to send login alerts, payment confirmations, KYC requests, account updates, and important security notices.
- Service reliability and security: to monitor performance, prevent unauthorized access, troubleshoot errors, and protect our systems.
- Legal record-keeping: to maintain records where regulation, tax, dispute handling, or licensing obligations require it.
If you have opted in, we may also use your preferences to send relevant promotions, and you can change that choice at any time.
Your GDPR Rights, Explained Clearly
If you are covered by GDPR or similar privacy laws, you have meaningful rights over your personal data. We aim to make those rights practical, not difficult to use. You can usually start from your account dashboard, or you can contact us directly at privacy@weplayego.com.
Your key rights include:
- Access: request a copy of the personal data we hold about you.
- Rectification: ask us to correct inaccurate or incomplete information.
- Erasure: request deletion of your data, although some records may need to be retained where AML, fraud, or legal obligations apply.
- Portability: ask for a machine-readable export of relevant personal data.
- Restriction: ask us to limit how we use certain information in specific circumstances.
- Objection to marketing: stop promotional emails or messages without affecting essential account communications.
- Withdraw consent: where processing depends on consent, you can withdraw it at any time.
We may need to verify your identity before completing a request, which helps us protect your data from unauthorized access.
How we verify
These policies are reviewed by our compliance editor against the operator's published terms and the relevant licence conditions, and updated whenever the terms change.